Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217071 4.3 警告 Kennziffer.com - TYPO3 用 Questionnaire (ke_questionnaire) エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4956 2014-12-3 17:00 2011-10-9 Show GitHub Exploit DB Packet Storm
217072 7.5 危険 Kennziffer.com - TYPO3 用 Questionnaire (ke_questionnaire) エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4957 2014-12-3 16:59 2011-10-9 Show GitHub Exploit DB Packet Storm
217073 5.8 警告 アップル
GNU Project		 - GNU patch の util.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4651 2014-12-3 16:33 2011-03-11 Show GitHub Exploit DB Packet Storm
217074 7.2 危険 CCH group - CCH Wolters Kluwer ProSystem fx Engagement におけるローカルシステムの権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9113 2014-12-3 16:17 2014-11-26 Show GitHub Exploit DB Packet Storm
217075 5 警告 GNU Project - GNU Cpio の process_copy_in 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9112 2014-12-3 16:08 2014-11-27 Show GitHub Exploit DB Packet Storm
217076 4 警告 CSSJockey.com - WordPress 用 SupportEzzy Ticket System プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9179 2014-12-3 16:08 2014-10-12 Show GitHub Exploit DB Packet Storm
217077 7.5 危険 Smarty Pants Plugins - WordPress 用 Smarty Pants Plugins SP Client Document Manager プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9178 2014-12-3 16:07 2014-11-21 Show GitHub Exploit DB Packet Storm
217078 5 警告 SVN Labs Softwares. - WordPress 用 HTML5 MP3 Player with Playlist Free プラグインにおけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-9177 2014-12-3 16:07 2014-11-26 Show GitHub Exploit DB Packet Storm
217079 4.3 警告 InstaSqueeze.com - WordPress 用 InstaSqueeze Sexy Squeeze Pages プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9176 2014-12-3 16:06 2014-11-26 Show GitHub Exploit DB Packet Storm
217080 7.5 危険 wpDataTables - WordPress 用 wpDataTables プラグインの wpdatatables.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-9175 2014-12-3 16:05 2014-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297291 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.51 and 8.52 allows remote authenticated users to affect integrity via unknown vectors related to Secu… NVD-CWE-noinfo
CVE-2013-0395 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297292 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft HRMS component in Oracle PeopleSoft Products 9.0 and 9.1 allows remote attackers to affect confidentiality via unknown vectors related to Candidate Gateway. NVD-CWE-noinfo
CVE-2013-0394 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297293 - oracle fusion_middleware Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related… NVD-CWE-noinfo
CVE-2013-0393 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297294 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.51 and 8.52 allows remote attackers to affect integrity via unknown vectors related to Portal, a diff… NVD-CWE-noinfo
CVE-2013-0392 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297295 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.52 allows remote authenticated users to affect confidentiality and integrity via unknown vectors rela… NVD-CWE-noinfo
CVE-2013-0391 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297296 - oracle e-business_suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect integrity via unknown vec… NVD-CWE-noinfo
CVE-2013-0390 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297297 - oracle
mariadb
canonical 		mysql
mariadb
ubuntu_linux 		Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors related to S… NVD-CWE-noinfo
CVE-2013-0389 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297298 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft HRMS component in Oracle PeopleSoft Products 9.1 allows remote attackers to affect integrity via unknown vectors related to Mobile Company Directory. NVD-CWE-noinfo
CVE-2013-0388 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297299 - oracle peoplesoft_products Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Products 8.51 and 8.52 allows remote authenticated users to affect confidentiality and integrity via unknown vec… NVD-CWE-noinfo
CVE-2013-0387 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm
297300 - oracle
mariadb
canonical 		mysql
mariadb
ubuntu_linux 		Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Stored Procedure. NVD-CWE-noinfo
CVE-2013-0386 2024-11-21 10:47 2013-01-17 Show GitHub Exploit DB Packet Storm